This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft File: IkB3DhUcdBqE3pTijHUgArg5--0.mft (raw, json) Hash identifier: M0Da6Luy0qJ6hbrU2g0bVdFyuJwG4oDGMYY6baXAWHY= Subject key identifier: 08:81:91:00:1C:74:F8:C1:74:EE:69:53:74:CC:74:51:C5:B0:57:23 Authority key identifier: 22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED Certificate issuer: /CN=A91A665A/serialNumber=2240770E151C741A84DE94E28C752002B839FBED Certificate serial: 07BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft Manifest number: 07AF Signing time: Sat 20 Dec 2025 20:45:42 +0000 Manifest this update: Sat 20 Dec 2025 20:45:41 +0000 Manifest next update: Sat 27 Dec 2025 20:45:41 +0000 Files and hashes: 1: IkB3DhUcdBqE3pTijHUgArg5--0.crl (hash: gLqOO9elhZyuIpUD84Zg+pACDSGEGbC5BoPfdah241s=) 2: 05E355AEA03811EDBC101B49C4F9AE02.roa (hash: CNZBv4FK9ZWvTtzm+cWIR1zfUXJg63OkryMkTZVFNpg=) 3: 8224075A293711EB9DE16C62C4F9AE02.roa (hash: BlNMvykSVEqNeWKjQSI6MISWgcMVQUYKsr+oWp8+db0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1978 (0x7ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A665A, serialNumber=2240770E151C741A84DE94E28C752002B839FBED Validity Not Before: Dec 20 20:45:41 2025 GMT Not After : Dec 27 20:45:41 2025 GMT Subject: CN=69470af5-3e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a6:ca:27:e4:84:bd:cf:0d:36:4f:b4:06:d2: 96:b7:04:41:5a:80:30:e0:32:46:dd:26:0c:a2:28: ef:72:92:2c:37:b8:2d:4a:c5:52:1b:24:26:5d:7f: 1b:0b:4e:9f:c6:9a:83:41:18:e6:ed:2a:31:38:b4: dd:bc:ef:8e:0c:1e:ac:58:28:1c:3a:92:c1:11:d2: b4:86:22:d7:2b:b0:1d:a3:31:a5:66:db:e5:3c:46: a1:f2:c2:6f:26:8f:88:09:b8:de:5c:b8:25:0e:1e: 86:79:e8:56:c8:28:a8:0f:bd:e8:01:5e:57:00:0f: ae:d2:95:98:80:76:a3:03:de:57:f9:9c:2f:9f:07: 9c:30:86:b0:fa:23:97:02:2a:fc:f5:07:2d:b5:22: b1:0d:98:bd:d1:45:c2:d0:72:52:3d:26:c9:fd:96: 25:b5:f2:61:0b:51:80:6d:79:4c:31:8f:f5:a6:8c: 02:ad:62:e5:99:ac:01:d9:a0:2a:eb:7a:06:dd:3d: 03:41:eb:e8:e5:7b:2e:93:8f:df:42:73:2f:4a:de: ff:e7:2b:69:0a:00:01:29:79:18:f6:99:e8:13:41: 92:b9:a8:23:95:36:c7:e9:64:d2:5f:10:b6:fc:be: 8e:cf:bb:d7:68:fe:7c:c0:c8:26:69:0a:f5:50:41: a5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:81:91:00:1C:74:F8:C1:74:EE:69:53:74:CC:74:51:C5:B0:57:23 X509v3 Authority Key Identifier: keyid:22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:a3:6e:d8:f1:92:c8:a9:34:4a:95:18:02:e0:d2:e4:6e:29: 07:d8:ce:73:df:b3:cf:f9:af:63:20:21:5e:85:40:33:c8:47: ea:60:9e:fd:9c:0c:39:12:d3:a1:29:eb:bf:d8:5e:23:5f:63: 5f:67:59:61:80:3a:c1:44:91:f2:18:89:b2:a3:5f:1d:e8:08: 63:3e:fb:cc:ed:84:9e:86:c3:78:fb:a4:f2:5e:02:9e:a4:d7: d1:ba:a7:5d:65:05:08:7a:42:ad:45:5f:82:bf:c2:a7:96:c1: e8:f4:b8:a5:6a:bd:9c:25:69:4a:83:cc:63:da:10:3b:bf:37: f2:03:7c:d8:7b:60:84:db:04:2e:1a:aa:85:bb:45:a9:ce:9b: d9:c5:78:dd:52:be:b4:68:ad:4a:a6:06:1a:eb:c6:57:34:5d: 15:32:63:ae:48:ae:6b:0a:4c:78:d9:8a:de:1a:23:98:ed:5e: c8:fe:64:b7:b3:c4:4b:54:29:f9:87:6c:b1:b0:f4:52:d8:ec: ac:c7:3c:e8:8b:41:be:dc:e6:65:f5:2b:c5:a9:48:f4:08:ac: 52:8b:73:21:06:e8:7f:07:aa:62:9e:79:1d:da:50:61:e5:09: 23:22:7a:52:83:a1:6f:3d:0e:4b:8d:34:cc:8e:59:7b:0a:2a: 41:59:87:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY2NUExMTAvBgNVBAUTKDIyNDA3NzBFMTUxQzc0MUE4NERFOTRFMjhDNzUyMDAy QjgzOUZCRUQwHhcNMjUxMjIwMjA0NTQxWhcNMjUxMjI3MjA0NTQxWjAYMRYwFAYD VQQDDA02OTQ3MGFmNS0zZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76bKJ+SEvc8NNk+0BtKWtwRBWoAw4DJG3SYMoijvcpIsN7gtSsVSGyQmXX8b C06fxpqDQRjm7SoxOLTdvO+ODB6sWCgcOpLBEdK0hiLXK7AdozGlZtvlPEah8sJv Jo+ICbjeXLglDh6GeehWyCioD73oAV5XAA+u0pWYgHajA95X+ZwvnwecMIaw+iOX Air89QcttSKxDZi90UXC0HJSPSbJ/ZYltfJhC1GAbXlMMY/1powCrWLlmawB2aAq 63oG3T0DQevo5Xsuk4/fQnMvSt7/5ytpCgABKXkY9pnoE0GSuagjlTbH6WTSXxC2 /L6Oz7vXaP58wMgmaQr1UEGl/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiBkQAc dPjBdO5pU3TMdFHFsFcjMB8GA1UdIwQYMBaAFCJAdw4VHHQahN6U4ox1IAK4Ofvt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjY1QS9DOEZBRDEzODI5 MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RCcUUzcFRpakhVZ0FyZzUt LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lrQjNEaFVjZEJxRTNwVGlqSFVnQXJnNS0tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjY1QS9DOEZBRDEzODI5MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RC cUUzcFRpakhVZ0FyZzUtLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDo27Y8ZLIqTRKlRgC4NLkbikH2M5z37PP+a9jICFehUAzyEfqYJ79 nAw5EtOhKeu/2F4jX2NfZ1lhgDrBRJHyGImyo18d6AhjPvvM7YSehsN4+6TyXgKe pNfRuqddZQUIekKtRV+Cv8KnlsHo9Lilar2cJWlKg8xj2hA7vzfyA3zYe2CE2wQu GqqFu0WpzpvZxXjdUr60aK1KpgYa68ZXNF0VMmOuSK5rCkx42YreGiOY7V7I/mS3 s8RLVCn5h2yxsPRS2Oysxzzoi0G+3OZl9SvFqUj0CKxSi3MhBuh/B6pinnkd2lBh 5QkjInpSg6FvPQ5LjTTMjll7CipBWYff -----END CERTIFICATE-----Generated at Sun Dec 21 13:42:55 2025 by rpki-client